github/myvesta
1
0
Fork 0
mirror of https://github.com/myvesta/vesta synced 2025-08-19 21:04:07 -07:00
Code Issues Projects Releases Packages Wiki Activity Actions

Updated installer. Fixes #58

Browse source
This commit is contained in:
Serghey Rodin 2013-02-11 17:36:39 +02:00
commit 0eaf490399
1 changed files with 456 additions and 346 deletions
Download patch file Download diff file Expand all files Collapse all files

802
install/vst-install.sh
View file

@ -1,42 +1,27 @@
#!/bin/bash #!/bin/bash
# Vesta installer # Vesta installer v.03
# Define Variables #----------------------------------------------------------#
# Variables&Functions #
#----------------------------------------------------------#
RHOST='r.vestacp.com' RHOST='r.vestacp.com'
CHOST='c.vestacp.com' CHOST='c.vestacp.com'
REPO='cmmnt' REPO='cmmnt'
VERSION='0.9.7' VERSION='0.9.7'
YUM_REPO='/etc/yum.repos.d/vesta.repo' YUM_REPO='/etc/yum.repos.d/vesta.repo'
arch=$(uname -i) arch=$(uname -i)
tools="screen mc libpng libjpeg curl libmcrypt mhash zip unzip freetype ntp
openssl flex libxml2 ImageMagick sqlite pcre sudo bc jwhois mailx lsof
tar telnet rsync"
rpms="nginx httpd mod_ssl mod_ruid2 mod_extract_forwarded mod_fcgid ftp
webalizer awstats mysql mysql-server php php-bcmath php-cli php-common
php-gd php-imap php-mbstring php-mcrypt php-mysql php-pdo php-soap php-tidy
php-xml php-xmlrpc phpMyAdmin exim dovecot clamd spamassassin roundcubemail
bind bind-utils bind-libs vsftpd rrdtool GeoIP vesta vesta-nginx vesta-php"
# Am I root?
if [ "x$(id -u)" != 'x0' ]; then
echo 'Error: this script can only be executed by root'
exit 1
fi
# Check supported version
if [ ! -e '/etc/redhat-release' ]; then
echo 'Error: sorry, we currently support RHEL and CentOS only'
exit 1
fi
os=$(cut -f 1 -d ' ' /etc/redhat-release) os=$(cut -f 1 -d ' ' /etc/redhat-release)
if [ $os != 'CentOS' ] && [ $os != 'Red' ]; then
echo 'Error: sorry, we currently support RHEL and CentOS only'
fi
release=$(grep -o "[0-9]" /etc/redhat-release |head -n1) release=$(grep -o "[0-9]" /etc/redhat-release |head -n1)
memory=$(grep 'MemTotal' /proc/meminfo |tr ' ' '\n' |grep [0-9])
software="nginx httpd mod_ssl mod_ruid2 mod_extract_forwarded mod_fcgid
php php-bcmath php-cli php-common php-gd php-imap php-mbstring php-mcrypt
php-mysql php-pdo php-soap php-tidy php-xml php-xmlrpc phpMyAdmin awstats
webalizer vsftpd mysql mysql-server exim dovecot clamd spamassassin curl
roundcubemail bind bind-utils bind-libs mc screen ftp libpng libjpeg
libmcrypt mhash zip unzip openssl flex rssh libxml2 ImageMagick sqlite
pcre sudo bc jwhois mailx lsof tar telnet rsync rrdtool GeoIP freetype
ntp openssh-clients vesta vesta-nginx vesta-php"
help() { help() {
echo "usage: $0 [OPTIONS] echo "usage: $0 [OPTIONS]
@ -47,6 +32,22 @@ help() {
exit 1 exit 1
} }
# Password generator
gen_pass() {
MATRIX='0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'
LENGTH=10
while [ ${n:=1} -le $LENGTH ]; do
PASS="$PASS${MATRIX:$(($RANDOM%${#MATRIX})):1}"
let n+=1
done
echo "$PASS"
}
#----------------------------------------------------------#
# Verifications #
#----------------------------------------------------------#
# Translating argument to --gnu-long-options # Translating argument to --gnu-long-options
for arg; do for arg; do
delim="" delim=""
@ -66,69 +67,28 @@ while getopts "dhfe:" Option; do
case $Option in case $Option in
d) disable_remi='yes' ;; # Disable remi repo d) disable_remi='yes' ;; # Disable remi repo
h) help ;; # Help h) help ;; # Help
e) email=$OPTARG ;; # Contact email e) email=$OPTARG ;; # Set email
f) force=yes ;; # Force install f) force=yes ;; # Force install
*) help ;; # Default *) help ;; # Default
esac esac
done done
# Are you sure ? # Am I root?
if [ -z $email ]; then if [ "x$(id -u)" != 'x0' ]; then
echo echo 'Error: this script can only be executed by root'
echo
echo
echo
echo
echo ' ***********************************************************'
echo
echo ' _| _| _|_|_|_| _|_|_| _|_|_|_|_| _|_| '
echo ' _| _| _| _| _| _| _| '
echo ' _| _| _|_|_| _|_| _| _|_|_|_| '
echo ' _| _| _| _| _| _| _| '
echo ' _| _|_|_|_| _|_|_| _| _| _| '
echo
echo
echo
echo
echo
echo
echo
echo
echo ' ***********************************************************'
echo
echo
read -n 1 -p 'Do you want to install Vesta Control Panel? [y/n]): ' answer
if [ "$answer" != 'y' ] && [ "$answer" != 'Y' ]; then
echo 'Goodbye'
exit 1
fi
echo
# Check email
read -p 'Please enter valid email address: ' email
fi
# Validate email
local_part=$(echo $email | cut -s -f1 -d\@)
remote_host=$(echo $email | cut -s -f2 -d\@)
mx_failed=1
if [ ! -z "$remote_host" ] && [ ! -z "$local_part" ]; then
/usr/bin/host -t mx "$remote_host" &> /dev/null
mx_failed="$?"
fi
if [ "$mx_failed" -eq 1 ]; then
echo "Error: email $email is not valid"
exit 1 exit 1
fi fi
echo # Check supported version
echo if [ ! -e '/etc/redhat-release' ]; then
echo echo 'Error: sorry, we currently support RHEL and CentOS only'
echo exit 1
echo 'Installation will take about 15 minutes ...' fi
echo
sleep 2 # Check supported OS
if [ $os != 'CentOS' ] && [ $os != 'Red' ]; then
echo 'Error: sorry, we currently support RHEL and CentOS only'
fi
# Check wget # Check wget
if [ ! -e '/usr/bin/wget' ]; then if [ ! -e '/usr/bin/wget' ]; then
@ -140,7 +100,7 @@ if [ ! -e '/usr/bin/wget' ]; then
fi fi
# Check repo availability # Check repo availability
wget "$RHOST/$REPO/vesta.conf" -O /dev/null wget -q "$RHOST/$REPO/vesta.conf" -O /dev/null
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo "Error: no access to $REPO repository" echo "Error: no access to $REPO repository"
exit 1 exit 1
@ -149,22 +109,19 @@ fi
# Check installed packages # Check installed packages
tmpfile=$(mktemp -p /tmp) tmpfile=$(mktemp -p /tmp)
rpm -qa > $tmpfile rpm -qa > $tmpfile
for rpm in $rpms; do for pkg in exim bind-9 mysql-server httpd nginx vesta; do
if [ ! -z "$(grep ^$rpm. $tmpfile)" ]; then if [ ! -z "$(grep $pkg $tmpfile)" ]; then
conflicts="$rpm $conflicts" conflicts="$pkg $conflicts"
fi fi
done done
rm -f $tmpfile rm -f $tmpfile
if [ ! -z "$conflicts" ] && [ -z "$force" ]; then if [ ! -z "$conflicts" ] && [ -z "$force" ]; then
echo
echo '!!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!!' echo '!!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!! !!!'
echo echo
echo 'Following rpm packages aleady installed:' echo 'Following rpm packages are already installed:'
echo "$conflicts" echo "$conflicts"
echo echo
echo 'It is highly recommended to remove them before proceeding.' echo 'It is highly recommended to remove them before proceeding.'
echo
echo 'If you want to force installation run this script with -f option:' echo 'If you want to force installation run this script with -f option:'
echo "Example: bash $0 --force" echo "Example: bash $0 --force"
echo echo
@ -173,16 +130,85 @@ if [ ! -z "$conflicts" ] && [ -z "$force" ]; then
exit 1 exit 1
fi fi
# Password generator # Check server type
gen_pass() { if [ "$memory" -lt '350000' ]; then
MATRIX='0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz' echo "Error: not enought memory to install Vesta Control Panel."
LENGTH=10 exit 1
while [ ${n:=1} -le $LENGTH ]; do fi
PASS="$PASS${MATRIX:$(($RANDOM%${#MATRIX})):1}" srv_type='micro'
let n+=1
done if [ "$memory" -gt '1000000' ]; then
echo "$PASS" srv_type='small'
} fi
if [ "$memory" -gt '3000000' ]; then
srv_type='medium'
fi
if [ "$memory" -gt '7000000' ]; then
srv_type='large'
fi
# Are you sure ?
if [ -z $email ]; then
clear
echo
echo ' _| _| _|_|_|_| _|_|_| _|_|_|_|_| _|_| '
echo ' _| _| _| _| _| _| _| '
echo ' _| _| _|_|_| _|_| _| _|_|_|_| '
echo ' _| _| _| _| _| _| _| '
echo ' _| _|_|_|_| _|_|_| _| _| _| '
echo
echo ' Vesta Control Panel'
echo
echo
echo 'Following software will be installed on your system:'
echo ' - Nginx frontend web server'
echo ' - Apache application web server'
echo ' - Bind DNS server'
echo ' - Exim mail server'
echo ' - Dovecot IMAP and POP3 server'
if [ "$srv_type" = 'medium' ] || [ "$srv_type" = 'large' ]; then
echo ' - Clam mail antivirus'
echo ' - SpamAssassin antispam'
fi
echo ' - MySQL database server'
echo ' - Vsftpd FTP server'
echo
echo ' * SELinux and Iptables will be disabled'
echo
read -p 'Do you want to proceed? [y/n]): ' answer
if [ "$answer" != 'y' ] && [ "$answer" != 'Y' ]; then
echo 'Goodbye'
exit 1
fi
# Check email
read -p 'Please enter valid email address: ' email
fi
# Validate email
local_part=$(echo $email | cut -s -f1 -d\@)
remote_host=$(echo $email | cut -s -f2 -d\@)
mx_failed=1
if [ ! -z "$remote_host" ] && [ ! -z "$local_part" ]; then
/usr/bin/host -t mx "$remote_host" > /dev/null 2>&1
mx_failed="$?"
fi
if [ "$mx_failed" -eq 1 ]; then
echo "Error: email $email is not valid"
exit 1
fi
#----------------------------------------------------------#
# Install repository #
#----------------------------------------------------------#
# Let's start
echo -e "\n\n\n\nInstallation will take about 15 minutes ...\n"
sleep 2
# Update system # Update system
yum -y update yum -y update
@ -191,13 +217,6 @@ if [ $? -ne 0 ]; then
exit 1 exit 1
fi fi
# Install additional packages
yum -y install $tools
if [ $? -ne 0 ]; then
echo 'Error: yum install failed'
exit 1
fi
# Install EPEL repo # Install EPEL repo
if [ ! -e '/etc/yum.repos.d/epel.repo' ]; then if [ ! -e '/etc/yum.repos.d/epel.repo' ]; then
if [ "$release" -eq '5' ]; then if [ "$release" -eq '5' ]; then
@ -241,51 +260,156 @@ gpgcheck=1
gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-VESTA" > $YUM_REPO gpgkey=file:///etc/pki/rpm-gpg/RPM-GPG-KEY-VESTA" > $YUM_REPO
wget $CHOST/GPG.txt -O /etc/pki/rpm-gpg/RPM-GPG-KEY-VESTA wget $CHOST/GPG.txt -O /etc/pki/rpm-gpg/RPM-GPG-KEY-VESTA
# Checking if old MySQL stuff exists
#----------------------------------------------------------#
# Backups #
#----------------------------------------------------------#
# Prepare backup tree
vst_backups="/root/vst_install_backups/$(date +%s)"
mkdir -p $vst_backups/nginx
mkdir -p $vst_backups/httpd
mkdir -p $vst_backups/mysql
mkdir -p $vst_backups/exim
mkdir -p $vst_backups/dovecot
mkdir -p $vst_backups/clamd
mkdir -p $vst_backups/vsftpd
mkdir -p $vst_backups/named
mkdir -p $vst_backups/vesta/admin
# Backup sudoers
if [ -e '/etc/sudoers' ]; then
cp /etc/sudoers $vst_backups/
fi
# Backup nginx
service nginx stop > /dev/null 2>&1
if [ -e '/etc/nginx/nginx.conf' ]; then
cp /etc/nginx/nginx.conf $vst_backups/nginx/
fi
if [ -f '/etc/nginx/conf.d/default.conf' ]; then
cp /etc/nginx/conf.d/default.conf $vst_backups/nginx/
fi
if [ -e '/etc/nginx/conf.d/example_ssl.conf' ]; then
cp /etc/nginx/conf.d/example_ssl.conf $vst_backups/nginx/
fi
if [ -e '/etc/nginx/conf.d/vesta_ip.conf' ]; then
mv /etc/nginx/conf.d/vesta_ip.conf $vst_backups/nginx
fi
# Backup httpd
service httpd stop > /dev/null 2>&1
if [ -e '/etc/httpd/conf/httpd.conf' ]; then
cp /etc/httpd/conf/httpd.conf $vst_backups/httpd/
fi
if [ -e '/etc/httpd/conf.d/ssl.conf' ]; then
cp /etc/httpd/conf.d/ssl.conf $vst_backups/httpd/
fi
if [ -e '/etc/httpd/conf.d/proxy_ajp.conf' ]; then
cp /etc/httpd/conf.d/proxy_ajp.conf $vst_backups/httpd/
fi
# Backup bind
service named stop > /dev/null 2>&1
if [ -e '/etc/named.conf' ]; then
cp /etc/named.conf $vst_backups/named/
fi
# Backup vsftpd
service vsftpd stop > /dev/null 2>&1
if [ -e '/etc/vsftpd/vsftpd.conf' ]; then
cp /etc/vsftpd/vsftpd.conf $vst_backups/vsftpd/
fi
# Backup exim
service exim stop > /dev/null 2>&1
if [ -e '/etc/exim/exim.conf' ]; then
cp /etc/exim/exim.conf $vst_backups/exim/
fi
if [ -e '/etc/exim/domains' ]; then
cp -r /etc/exim/domains $vst_backups/exim/
fi
# Backup clamav
service clamd stop > /dev/null 2>&1
if [ -e '/etc/clamd.conf' ]; then
cp /etc/clamd.conf $vst_backups/clamd/
fi
# Backup SpamAssassin
service spamassassin stop > /dev/null 2>&1
if [ -e '/etc/mail/spamassassin' ]; then
cp -r /etc/mail/spamassassin $vst_backups/
fi
# Backup dovecot
service dovecot stop > /dev/null 2>&1
if [ -e '/etc/dovecot.conf' ]; then
cp /etc/dovecot.conf $vst_backups/dovecot/
fi
if [ -e '/etc/dovecot' ]; then
cp -r /etc/dovecot $vst_backups/dovecot/
fi
# Backup MySQL stuff
service mysqld stop > /dev/null 2>&1
if [ -e '/var/lib/mysql' ]; then if [ -e '/var/lib/mysql' ]; then
mv -f /var/lib/mysql /var/lib/mysql_old mv /var/lib/mysql $vst_backups/mysql/mysql_datadir
fi fi
if [ -e '/etc/my.cnf' ]; then if [ -e '/etc/my.cnf' ]; then
mv -f /etc/my.cnf /etc/my.cnf_old cp /etc/my.cnf $vst_backups/mysql/
fi fi
if [ -e '/root/.my.cnf' ]; then if [ -e '/root/.my.cnf' ]; then
mv -f /root/.my.cnf mv /root/.my.cnf $vst_backups/mysql/
fi
# Backup vesta
service vesta stop > /dev/null 2>&1
if [ -e '/usr/local/vesta/data' ]; then
mv /usr/local/vesta/data $vst_backups/vesta/
fi
if [ -e '/usr/local/vesta/conf' ]; then
mv /usr/local/vesta/conf $vst_backups/vesta/
fi
if [ -e '/home/admin/conf/' ]; then
mv /home/admin/conf/ $vst_backups/vesta/admin
fi
#----------------------------------------------------------#
# Install packages #
#----------------------------------------------------------#
# Exclude heavy packages
if [ "$srv_type" = 'micro' ]; then
software=$(echo "$software" | sed -e 's/mod_fcgid//')
software=$(echo "$software" | sed -e 's/clamd//')
software=$(echo "$software" | sed -e 's/spamassassin//')
fi
if [ "$srv_type" = 'small' ]; then
software=$(echo "$software" | sed -e 's/clamd//')
software=$(echo "$software" | sed -e 's/spamassassin//')
fi fi
# Install Vesta packages # Install Vesta packages
if [ -z "$disable_remi" ]; then if [ -z "$disable_remi" ]; then
yum -y --enablerepo=remi install $rpms yum -y --enablerepo=remi install $software
else else
yum -y install $rpms yum -y install $software
fi fi
if [ $? -ne 0 ]; then if [ $? -ne 0 ]; then
echo 'Error: yum install failed' echo 'Error: yum install failed'
exit 1 exit 1
fi fi
# Configuring run levels
chkconfig iptables off
if [ -e /etc/init.d/sendmail ]; then
chkconfig sendmail off
fi
if [ -e /etc/init.d/postfix ]; then
chkconfig postfix off
fi
chkconfig vesta on
chkconfig httpd on
chkconfig nginx on
chkconfig mysqld on
chkconfig vsftpd on
chkconfig named on
chkconfig exim on
chkconfig clamd on
chkconfig spamassassin on
chkconfig dovecot on
# Make dirs more visible #----------------------------------------------------------#
echo 'LS_COLORS="$LS_COLORS:di=00;33"' >> /etc/profile # Configure system #
#----------------------------------------------------------#
# Vesta does not support SELINUX for now # Disabling SELinux
if [ -e '/etc/sysconfig/selinux' ]; then if [ -e '/etc/sysconfig/selinux' ]; then
sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/sysconfig/selinux sed -i 's/SELINUX=enforcing/SELINUX=disabled/g' /etc/sysconfig/selinux
setenforce 0 setenforce 0
@ -295,112 +419,44 @@ if [ -e '/etc/selinux/config' ]; then
setenforce 0 setenforce 0
fi fi
# Vesta use own webalizer routine # Disabling iptables
chkconfig iptables off
service iptables stop
# Disabling webalizer routine
rm -f /etc/cron.daily/00webalizer rm -f /etc/cron.daily/00webalizer
# Set directory color
echo 'LS_COLORS="$LS_COLORS:di=00;33"' >> /etc/profile
# Sudo configuration
wget $CHOST/$VERSION/sudoers.conf -O /etc/sudoers
chmod 0440 /etc/sudoers
# NTP Synchronization # NTP Synchronization
echo '#!/bin/sh' > /etc/cron.daily/ntpdate echo '#!/bin/sh' > /etc/cron.daily/ntpdate
echo "$(which ntpdate) -s pool.ntp.org" >> /etc/cron.daily/ntpdate echo "$(which ntpdate) -s pool.ntp.org" >> /etc/cron.daily/ntpdate
chmod 775 /etc/cron.daily/ntpdate chmod 775 /etc/cron.daily/ntpdate
ntpdate -s pool.ntp.org ntpdate -s pool.ntp.org
# Vesta Environment # Setup rssh
echo "export VESTA='/usr/local/vesta'" > /etc/profile.d/vesta.sh if [ -z "$(grep /usr/bin/rssh /etc/shells)" ]; then
chmod 755 /etc/profile.d/vesta.sh echo /usr/bin/rssh >> /etc/shells
source /etc/profile.d/vesta.sh
echo 'PATH=$PATH:/usr/local/vesta/bin' >> /root/.bash_profile
echo 'export PATH' >> /root/.bash_profile
source /root/.bash_profile
mkdir -p $VESTA/conf
mkdir -p $VESTA/log
mkdir -p $VESTA/data
mkdir -p $VESTA/ssl
chmod 770 $VESTA/conf
# Make backup directory
vst_backups="/root/vst_install_backups/$(date +%s)"
mkdir -p $vst_backups
mkdir -p $vst_backups/nginx
mkdir -p $vst_backups/httpd
mkdir -p $vst_backups/mysql
mkdir -p $vst_backups/exim
mkdir -p $vst_backups/dovecot
mkdir -p $vst_backups/clamd
mkdir -p $vst_backups/vsftpd
mkdir -p $vst_backups/named
wget $RHOST/$REPO/vesta.conf -O $VESTA/conf/vesta.conf
if [ -e '/etc/sudoers' ]; then
mv /etc/sudoers $vst_backups/
fi fi
wget $CHOST/$VERSION/sudoers.conf -O /etc/sudoers sed -i 's/#allowscp/allowscp/' /etc/rssh.conf
chmod 0440 /etc/sudoers sed -i 's/#allowsftp/allowsftp/' /etc/rssh.conf
wget $CHOST/$VERSION/vesta.log -O /etc/logrotate.d/vesta sed -i 's/#allowrsync/allowrsync/' /etc/rssh.conf
chmod 755 /usr/bin/rssh
sed -i "s/umask 022/umask 002/g" /etc/profile # Apache configuration
# Create backup directory
adduser backup
ln -s /home/backup /backup
chmod a+x /backup
# Configuring data templates
cd /usr/local/vesta/data
mkdir ips
mkdir queue
mkdir users
touch queue/backup.pipe
touch queue/disk.pipe
touch queue/webstats.pipe
touch queue/restart.pipe
touch queue/traffic.pipe
chmod 750 users
chmod 750 ips
chmod -R 750 queue
wget $CHOST/$VERSION/packages.tar.gz -O packages.tar.gz
tar -xzf packages.tar.gz
rm -f packages.tar.gz
cd /usr/local/vesta/data
wget $CHOST/$VERSION/templates.tar.gz -O templates.tar.gz
tar -xzf templates.tar.gz
rm -f templates.tar.gz
chmod -R 755 /usr/local/vesta/data/templates
cp templates/web/skel/public_html/index.html /var/www/html/
sed -i 's/%domain%/It worked!/g' /var/www/html/index.html
# Configuring ssl keys
cd /usr/local/vesta/ssl
wget $CHOST/$VERSION/certificate.crt -O certificate.crt
wget $CHOST/$VERSION/certificate.key -O certificate.key
# Adding admin user
vpass=$(gen_pass)
$VESTA/bin/v-add-user admin $vpass $email default System Administrator
if [ $? -ne 0 ]; then
echo "Error: can't create admin user"
exit 1
fi
# Set shell
$VESTA/bin/v-change-user-shell admin bash
# Apache
if [ -e '/etc/httpd/conf/httpd.conf' ]; then
mv /etc/httpd/conf/httpd.conf $vst_backups/httpd/
fi
if [ -e '/etc/httpd/conf.d/ssl.conf' ]; then
mv /etc/httpd/conf.d/ssl.conf $vst_backups/httpd/
fi
if [ -e '/etc/httpd/conf.d/proxy_ajp.conf' ]; then
mv /etc/httpd/conf.d/proxy_ajp.conf $vst_backups/httpd/
fi
wget $CHOST/$VERSION/httpd.conf -O /etc/httpd/conf/httpd.conf wget $CHOST/$VERSION/httpd.conf -O /etc/httpd/conf/httpd.conf
wget $CHOST/$VERSION/httpd-status.conf -O /etc/httpd/conf.d/status.conf wget $CHOST/$VERSION/httpd-status.conf -O /etc/httpd/conf.d/status.conf
wget $CHOST/$VERSION/httpd-ssl.conf -O /etc/httpd/conf.d/ssl.conf wget $CHOST/$VERSION/httpd-ssl.conf -O /etc/httpd/conf.d/ssl.conf
wget $CHOST/$VERSION/httpd.log -O /etc/logrotate.d/httpd wget $CHOST/$VERSION/httpd.log -O /etc/logrotate.d/httpd
echo "MEFaccept 127.0.0.1" >> /etc/httpd/conf.d/mod_extract_forwarded.conf echo "MEFaccept 127.0.0.1" >> /etc/httpd/conf.d/mod_extract_forwarded.conf
rm -f /etc/httpd/conf.d/proxy_ajp.conf
echo > /etc/httpd/conf.d/proxy_ajp.conf echo > /etc/httpd/conf.d/proxy_ajp.conf
rm -f /etc/httpd/conf.d/vesta.conf
echo > /etc/httpd/conf.d/vesta.conf echo > /etc/httpd/conf.d/vesta.conf
touch /var/log/httpd/access_log touch /var/log/httpd/access_log
touch /var/log/httpd/error_log touch /var/log/httpd/error_log
@ -411,122 +467,213 @@ chmod 640 /var/log/httpd/access_log
chmod 640 /var/log/httpd/error_log chmod 640 /var/log/httpd/error_log
chmod 640 /var/log/httpd/suexec.log chmod 640 /var/log/httpd/suexec.log
chmod 751 /var/log/httpd/domains chmod 751 /var/log/httpd/domains
chkconfig httpd on
service httpd start
# Enable short_open_tag in php config # Nginx configuration
sed -i 's/short_open_tag = Off/short_open_tag = On/g' /etc/php.ini
# Nginx
if [ -e '/etc/nginx/nginx.conf' ]; then
mv /etc/nginx/nginx.conf $vst_backups/nginx/
fi
if [ -f '/etc/nginx/conf.d/default.conf' ]; then
mv /etc/nginx/conf.d/default.conf $vst_backups/nginx/
fi
if [ -e '/etc/nginx/conf.d/example_ssl.conf' ]; then
mv /etc/nginx/conf.d/example_ssl.conf $vst_backups/nginx/
fi
wget $CHOST/$VERSION/nginx.conf -O /etc/nginx/nginx.conf wget $CHOST/$VERSION/nginx.conf -O /etc/nginx/nginx.conf
wget $CHOST/$VERSION/nginx-status.conf -O /etc/nginx/conf.d/status.conf wget $CHOST/$VERSION/nginx-status.conf -O /etc/nginx/conf.d/status.conf
rm -f /etc/nginx/conf.d/vesta_ip.conf
touch /etc/nginx/conf.d/vesta_ip.conf touch /etc/nginx/conf.d/vesta_ip.conf
rm -f /etc/nginx/conf.d/vesta_users.conf
touch /etc/nginx/conf.d/vesta_users.conf touch /etc/nginx/conf.d/vesta_users.conf
chkconfig nginx on
service nginx start
# VsFTP # Vsftpd configuration
if [ -e '/etc/vsftpd/vsftpd.conf' ]; then
mv /etc/vsftpd/vsftpd.conf $vst_backups/vsftpd/
fi
wget $CHOST/$VERSION/vsftpd.conf -O /etc/vsftpd/vsftpd.conf wget $CHOST/$VERSION/vsftpd.conf -O /etc/vsftpd/vsftpd.conf
chkconfig vsftpd on
service vsftpf start
# MySQL # MySQL configuration
if [ -e '/etc/my.cnf' ]; then
mv /etc/my.cnf $vst_backups/mysql/
fi
if [ -e '/root/.my.cnf' ]; then
mv /root/.my.cnf $vst_backups/mysql/
fi
mpass=$(gen_pass) mpass=$(gen_pass)
server_memory="$(grep 'MemTotal' /proc/meminfo |tr ' ' '\n' |grep [0-9])" if [ "$srv_type" ='micro' ]; then
if [ "$server_memory" -gt '1000000' ]; then
wget $CHOST/$VERSION/mysql.cnf -O /etc/my.cnf
else
wget $CHOST/$VERSION/mysql-512.cnf -O /etc/my.cnf wget $CHOST/$VERSION/mysql-512.cnf -O /etc/my.cnf
else
wget $CHOST/$VERSION/mysql.cnf -O /etc/my.cnf
fi fi
chkconfig mysqld on
service mysqld start service mysqld start
mysqladmin -u root password $mpass mysqladmin -u root password $mpass
echo -e "[client]\npassword='$mpass'\n" >/root/.my.cnf echo -e "[client]\npassword='$mpass'\n" > /root/.my.cnf
$VESTA/bin/v-add-database-server mysql localhost 3306 root $mpass
$VESTA/bin/v-add-database admin default default $(gen_pass) mysql
# Bind # Bind configuration
if [ -e '/etc/named.conf' ]; then
mv /etc/named.conf $vst_backups/named/
fi
wget $CHOST/$VERSION/named.conf -O /etc/named.conf wget $CHOST/$VERSION/named.conf -O /etc/named.conf
chown root:named /etc/named.conf chown root:named /etc/named.conf
chmod 640 /etc/named.conf chmod 640 /etc/named.conf
chkconfig named on
service named start
# Exim # Exim
if [ -e '/etc/exim/exim.conf' ]; then
mv /etc/exim/exim.conf $vst_backups/exim/
fi
if [ -e '/etc/clamd.conf' ]; then
mv /etc/clamd.conf $vst_backups/clamd/
fi
wget $CHOST/$VERSION/exim.conf -O /etc/exim/exim.conf wget $CHOST/$VERSION/exim.conf -O /etc/exim/exim.conf
if [ "$srv_type" = 'micro' ] || [ "$srv_type" = 'small' ]; then
sed -i "s/^SPAMASSASSIN/#SPAMASSASSIN/g" /etc/exim/exim.conf
sed -i "s/^CLAMD/#CLAMD/g" /etc/exim/exim.conf
fi
wget $CHOST/$VERSION/dnsbl.conf -O /etc/exim/dnsbl.conf wget $CHOST/$VERSION/dnsbl.conf -O /etc/exim/dnsbl.conf
wget $CHOST/$VERSION/spam-blocks.conf -O /etc/exim/spam-blocks.conf wget $CHOST/$VERSION/spam-blocks.conf -O /etc/exim/spam-blocks.conf
wget $CHOST/$VERSION/clamd.conf -O /etc/clamd.conf rm -rf /etc/exim/domains
mkdir /etc/exim/domains mkdir -p /etc/exim/domains
chmod 640 /etc/exim/exim.conf chmod 640 /etc/exim/exim.conf
gpasswd -a clam exim
gpasswd -a exim mail gpasswd -a exim mail
gpasswd -a clam mail if [ -e /etc/init.d/sendmail ]; then
gpasswd -a dovecot mail chkconfig sendmail off
/usr/bin/freshclam service sendmail stop
fi
if [ -e /etc/init.d/postfix ]; then
chkconfig postfix off
service postfix stop
fi
rm -f /etc/alternatives/mta
ln -s /usr/sbin/sendmail.exim /etc/alternatives/mta
chkconfig exim on
service exim start
# Dovecot config # Dovecot configuration
if [ "$release" -eq '5' ]; then if [ "$release" -eq '5' ]; then
if -e [ '/etc/dovecot.conf' ]; then
mv /etc/dovecot.conf $vst_backups/dovecot/
fi
wget $CHOST/$VERSION/dovecot.conf -O /etc/dovecot.conf wget $CHOST/$VERSION/dovecot.conf -O /etc/dovecot.conf
else else
if [ -e '/etc/dovecot' ]; then
mv /etc/dovecot/* $vst_backups/dovecot/
fi
wget $CHOST/$VERSION/dovecot.tar.gz -O /etc/dovecot.tar.gz wget $CHOST/$VERSION/dovecot.tar.gz -O /etc/dovecot.tar.gz
cd /etc/ cd /etc/
rm -rf dovecot
tar -xzf dovecot.tar.gz tar -xzf dovecot.tar.gz
rm -f dovecot.tar.gz rm -f dovecot.tar.gz
chown -R root:root /etc/dovecot
fi
gpasswd -a dovecot mail
chkconfig dovecot on
service dovecot start
# ClamAV configuration
if [ "$srv_type" = 'medium' ] || [ "$srv_type" = 'large' ]; then
wget $CHOST/$VERSION/clamd.conf -O /etc/clamd.conf
gpasswd -a clam exim
gpasswd -a clam mail
/usr/bin/freshclam
chkconfig clamd on
service clamd start
fi fi
# PMA # SpamAssassin configuration
if [ "$srv_type" = 'medium' ] || [ "$srv_type" = 'large' ]; then
chkconfig spamassassin on
service spamassassin start
fi
# php configuration
sed -i 's/short_open_tag = Off/short_open_tag = On/g' /etc/php.ini
# phpMyAdmin configuration
wget $CHOST/$VERSION/httpd-pma.conf -O /etc/httpd/conf.d/phpMyAdmin.conf wget $CHOST/$VERSION/httpd-pma.conf -O /etc/httpd/conf.d/phpMyAdmin.conf
wget $CHOST/$VERSION/pma.conf -O /etc/phpMyAdmin/config.inc.php wget $CHOST/$VERSION/pma.conf -O /etc/phpMyAdmin/config.inc.php
sed -i "s/%blowfish_secret%/$(gen_pass)/g" /etc/phpMyAdmin/config.inc.php sed -i "s/%blowfish_secret%/$(gen_pass)/g" /etc/phpMyAdmin/config.inc.php
# Roundcube setup # Roundcube configuration
wget $CHOST/$VERSION/httpd-webmail.conf -O /etc/httpd/conf.d/roundcubemail.conf wget $CHOST/$VERSION/httpd-webmail.conf -O /etc/httpd/conf.d/roundcubemail.conf
wget $CHOST/$VERSION/roundcube-main.conf -O /etc/roundcubemail/main.inc.php wget $CHOST/$VERSION/roundcube-main.conf -O /etc/roundcubemail/main.inc.php
wget $CHOST/$VERSION/roundcube-db.conf -O /etc/roundcubemail/db.inc.php wget $CHOST/$VERSION/roundcube-db.conf -O /etc/roundcubemail/db.inc.php
wget $CHOST/$VERSION/roundcube-driver.php -O /usr/share/roundcubemail/plugins/password/vesta.php wget $CHOST/$VERSION/roundcube-driver.php -O \
wget $CHOST/$VERSION/roundcube-pw.conf -O /usr/share/roundcubemail/plugins/password/config.inc.php /usr/share/roundcubemail/plugins/password/vesta.php
wget $CHOST/$VERSION/roundcube-pw.conf -O \
/usr/share/roundcubemail/plugins/password/config.inc.php
r="$(gen_pass)" r="$(gen_pass)"
mysql -e "CREATE DATABASE roundcube" mysql -e "CREATE DATABASE roundcube"
mysql -e "GRANT ALL ON roundcube.* TO roundcube@localhost IDENTIFIED BY '$r'" mysql -e "GRANT ALL ON roundcube.* TO roundcube@localhost IDENTIFIED BY '$r'"
sed -i "s/%password%/$r/g" /etc/roundcubemail/db.inc.php sed -i "s/%password%/$r/g" /etc/roundcubemail/db.inc.php
mysql roundcube < /usr/share/doc/roundcubemail-*/SQL/mysql.initial.sql mysql roundcube < /usr/share/doc/roundcubemail-*/SQL/mysql.initial.sql
# Configuring ip # Vesta configuration
echo "export VESTA='/usr/local/vesta'" > /etc/profile.d/vesta.sh
chmod 755 /etc/profile.d/vesta.sh
source /etc/profile.d/vesta.sh
echo 'PATH=$PATH:/usr/local/vesta/bin' >> /root/.bash_profile
echo 'export PATH' >> /root/.bash_profile
source /root/.bash_profile
wget $CHOST/$VERSION/vesta.log -O /etc/logrotate.d/vesta
# Directory tree
mkdir -p $VESTA/conf
mkdir -p $VESTA/log
mkdir -p $VESTA/ssl
mkdir -p $VESTA/data
mkdir -p $VESTA/data/ips
mkdir -p $VESTA/data/queue
mkdir -p $VESTA/data/users
touch $VESTA/data/queue/backup.pipe
touch $VESTA/data/queue/disk.pipe
touch $VESTA/data/queue/webstats.pipe
touch $VESTA/data/queue/restart.pipe
touch $VESTA/data/queue/traffic.pipe
chmod 750 $VESTA/conf
chmod 750 $VESTA/data/users
chmod 750 $VESTA/data/ips
chmod -R 750 $VESTA/data/queue
ln -f -s /usr/local/vesta/log /var/log/vesta
adduser backup
ln -f -s /home/backup /backup
chmod a+x /backup
# vesta.conf
wget $RHOST/$REPO/vesta.conf -O $VESTA/conf/vesta.conf
if [ "$srv_type" = 'micro' ] || [ "$srv_type" = 'small' ]; then
sed -i "s/clamav//g" $VESTA/conf/vesta.conf
sed -i "s/spamassassin//g" $VESTA/conf/vesta.conf
fi
# Templates
cd /usr/local/vesta/data
wget $CHOST/$VERSION/packages.tar.gz -O packages.tar.gz
tar -xzf packages.tar.gz
rm -f packages.tar.gz
cd /usr/local/vesta/data
wget $CHOST/$VERSION/templates.tar.gz -O templates.tar.gz
tar -xzf templates.tar.gz
rm -f templates.tar.gz
chmod -R 755 /usr/local/vesta/data/templates
cp templates/web/skel/public_html/index.html /var/www/html/
sed -i 's/%domain%/It worked!/g' /var/www/html/index.html
if [ "$srv_type" = 'micro' ]; then
rm -f /usr/local/vesta/data/templates/web/apache_phpfcgid.*
fi
# Default SSL keys
cd /usr/local/vesta/ssl
wget $CHOST/$VERSION/certificate.crt -O certificate.crt
wget $CHOST/$VERSION/certificate.key -O certificate.key
# Adding admin user
if [ ! -z "$(grep ^admin: /etc/passwd)" ] && [ "$force" = 'yes' ]; then
userdel -f admin
fi
vpass=$(gen_pass)
$VESTA/bin/v-add-user admin $vpass $email default System Administrator
if [ $? -ne 0 ]; then
echo "Error: can't create admin user"
exit 1
fi
$VESTA/bin/v-change-user-shell admin bash
# Configure mysql host
$VESTA/bin/v-add-database-server mysql localhost 3306 root $mpass
$VESTA/bin/v-add-database admin default default $(gen_pass) mysql
# Configuring system ips
$VESTA/bin/v-update-sys-ip $VESTA/bin/v-update-sys-ip
# Get main ip # Get main ip
main_ip=$(ifconfig |grep 'inet addr:' |grep -v 127.0.0.1 |head -n1 |\ main_ip=$(ifconfig |grep 'inet addr:' |grep -v 127.0.0.1 |head -n1 | \
cut -f2 -d: | cut -f1 -d ' ') cut -f2 -d: | cut -f1 -d ' ')
# Get remote ip
vst_ip=$(wget vestacp.com/what-is-my-ip/ -O - 2>/dev/null)
if [ ! -z "$vst_ip" ] && [ "$vst_ip" != "$main_ip" ]; then
# Assign passive ip address
echo "pasv_address=$vst_ip" >> /etc/vsftpd/vsftpd.conf
fi
if [ -z "$vst_ip" ]; then
vst_ip=$main_ip
fi
# Add default web domain on main ip # Add default web domain on main ip
$VESTA/bin/v-add-web-domain admin default.domain $main_ip $VESTA/bin/v-add-web-domain admin default.domain $main_ip
@ -552,51 +699,17 @@ $VESTA/bin/v-add-cron-job 'admin' '20' '00' '*' '*' '*' "$command"
command='sudo /usr/local/vesta/bin/v-update-sys-rrd' command='sudo /usr/local/vesta/bin/v-update-sys-rrd'
$VESTA/bin/v-add-cron-job 'admin' '*/5' '*' '*' '*' '*' "$command" $VESTA/bin/v-add-cron-job 'admin' '*/5' '*' '*' '*' '*' "$command"
# Creating symlink
ln -s /usr/local/vesta/log /var/log/vesta
# Stop unused services
services='iptables sendmail postfix'
for srv in $services; do
service $srv status > /dev/null
if [ $? -eq 0 ]; then
service $srv stop
fi
done
# Start system service
services='vesta httpd nginx vsftpd exim dovecot clamd spamassassin named crond'
for srv in $services; do
service $srv status > /dev/null
if [ $? -gt 0 ]; then
service $srv start
else
service $srv restart
fi
done
# Change sendmail client
rm -f /etc/alternatives/mta
ln -s /usr/sbin/sendmail.exim /etc/alternatives/mta
# Build inititall rrd images # Build inititall rrd images
$VESTA/bin/v-update-sys-rrd $VESTA/bin/v-update-sys-rrd
# Start system service
chkconfig vesta on
service vesta start
# Send notification to vestacp.com # Send notification to vestacp.com
wget vestacp.com/notify/?$REPO -O /dev/null wget vestacp.com/notify/?$REPO -O /dev/null
# Get server ip # Send notification to admin email
vst_ip=$(wget vestacp.com/what-is-my-ip/ -O - 2>/dev/null)
if [ ! -z "$vst_ip" ] && [ "$vst_ip" != "$main_ip" ]; then
# Assign passive ip address
echo "pasv_address=$vst_ip" >> /etc/vsftpd/vsftpd.conf
fi
if [ -z "$vst_ip" ]; then
vst_ip=$main_ip
fi
# Send email
echo -e "Congratulations, you have just successfully installed \ echo -e "Congratulations, you have just successfully installed \
the Vesta Control Panel the Vesta Control Panel
@ -618,28 +731,25 @@ cat $tmpfile | mail -s "Vesta Control Panel" $email
rm -f $tmpfile rm -f $tmpfile
# Congrats # Congrats
echo '======================================================='
echo echo
echo echo
echo ' ***********************************************************' echo ' _| _| _|_|_|_| _|_|_| _|_|_|_|_| _|_| '
echo echo ' _| _| _| _| _| _| _| '
echo ' _| _| _|_|_|_| _|_|_| _|_|_|_|_| _|_| ' echo ' _| _| _|_|_| _|_| _| _|_|_|_| '
echo ' _| _| _| _| _| _| _| ' echo ' _| _| _| _| _| _| _| '
echo ' _| _| _|_|_| _|_| _| _|_|_|_| ' echo ' _| _|_|_|_| _|_|_| _| _| _| '
echo ' _| _| _| _| _| _| _| '
echo ' _| _|_|_|_| _|_|_| _| _| _| '
echo
echo ' Congratulations, you have just successfully installed'
echo ' the Vesta Control Panel!'
echo
echo ' Now you can login in Vesta with following credentials:'
echo ' username: admin'
echo " password: $vpass"
echo " https://$vst_ip:8083/"
echo echo
echo echo
echo ' Thank you for using our product.' echo '-------------------------------'
echo " https://$vst_ip:8083"
echo ' username: admin'
echo " password: $vpass"
echo '-------------------------------'
echo echo
echo ' ***********************************************************' echo
echo 'Congratulations,'
echo 'you have successfully installed Vesta Control Panel.'
echo echo
echo echo